Apple Safari Browser Automatically Executes Shell Scripts
Posted by malebolgia on 20 February 2006 - 22:06 · 26 comments & 3036 views
About the Author
Full name: Unknown
Forum name:
malebolgia
Contact: via forum PM
Submissions: Normal · Headline
Full name: Unknown
Forum name:
malebolgiaContact: via forum PM
Submissions: Normal · Headline
Slashdot It!
Submit to reddit
Submit to blinklist
Bookmark on del.icio.us
Add to furl
Share on Facebook
Add to Windows Live
Add to Google- Advertisement
-
-
(3 replies)
#1 Posted by Shadrack on 20 Feb 2006 - 22:24
- "...so-called shebang line..."
is that the:
#!/bin/sh
line?
I noticed this when I first started using my Apple. I've been able to disable the auto open "feature," I need to also disable the auto-download "feature." I don't like how a website can send a file to my disk w/o me being prompted about it. -
#1.2 Posted by virtorio on 20 Feb 2006 - 23:22
- And they say Win$ is unsafe... :p
Tell me about it. Another 5000 issues like this a OS X will be on the same plane as Windows.
-
#2 Posted by marlow714 on 20 Feb 2006 - 23:48
- yikes..that's bad.
-
(4 replies)
#3 Posted by gabalicious on 21 Feb 2006 - 00:58
- this is good for windows users...i think people are starting to look into vulnerablities on the mac more than ever now.
-
#3.1 Posted by shrike on 21 Feb 2006 - 05:14
- It's not good for Windows users. It's good for Microsoft.
I personally don't care about OS X flaws like that. I don't like Windows too much, and I'm considering a Mac. Like I consider everything on the market. How does a flaw make it good for me? Knowing that software is buggy? -
#3.2 Posted by lwebster_2000 on 21 Feb 2006 - 22:59
- I think he meant to say something along the lines of that proverb that talks about tasting.... bad medicine...own, something like that
anyway, maybe this will help bring the mac boys and the windows boys together. without anything to argue over, we'll need a new common enemy - how bout those linux boys?.... -
#3.3 Posted by Jugalator on 22 Feb 2006 - 12:12
- How about respecting everyone's OS choice? But that would be too much to ask for...
-
#4 Posted by Mnemonicman on 21 Feb 2006 - 01:00
- Vulnerabilities on a Mac? *Gasp*
-
#5 Posted by DarkPhantasmo on 21 Feb 2006 - 01:31
- doh
Last edited by DarkPhantasmo on 21 Feb 2006 - 02:27
-
(1 reply)
#6 Posted by zeta_immersion on 21 Feb 2006 - 02:53
- as a mac/win/*nix user windows is still at the bottom ... look at the virus definition and u'll see why ... just because apple comes out with 32 fixes every 6 months where as windows comes with 10 each month (except the critical updates that can literally screw u're comp oh and by the way win updats do **** up u're computer ... sp2 and others ... none the less osx might catch up but as for editing music, videos and others, macs do kick ass
-
#6.1 Posted by dwarhya on 24 Feb 2006 - 19:37
- Seriously, who cares what OS is top or bottom. As long as your own flavour of OS is safe for you to use, then whats the big deal.
Why is it when someone starts a thread about windows/Mac/Linux, they always end up in a 'my dick is bigger than your dick' competition
-
(2 replies)
#7 Posted by thenewbf on 21 Feb 2006 - 06:11
- Solution: don't unzip untrusted shell scripts, and make sure the file you're unzipping is from a trusted source.
-
#7.1 Posted by PCyr on 21 Feb 2006 - 06:53
- Hasn't this philosiphy been true for almost every type of virus/worm/trojan/etc.?
-
(2 replies)
#8 Posted by n3urotic on 21 Feb 2006 - 08:38
- Excuse me here,
Why does this shellscript matter if it is missing the #!/bin/bash line? Every one knows if you don't include that line a shellscript doesn't run anyways.
If Safari treats it as a text file, TextEdit would open showing the script's code.
Does the OSX built-in unzipper strip execute permission from files it extract? -
#8.1 Posted by Jstphish on 21 Feb 2006 - 21:52
- The example page I went to hid it in a .mov file that was zipped. I clicked on the link and once the download was finished it automatically opened up and ran a script in terminal that said, "Hello World" in German.
-
#9 Posted by Jon on 21 Feb 2006 - 09:44
- Aaah it's ok, I don't really want credit for my BPN post anyway
"Solution: don't unzip untrusted shell scripts, and make sure the file you're unzipping is from a trusted source. " < RTFA.
-
(1 reply)
#10 Posted by madnuke on 21 Feb 2006 - 16:30
- Ah finally hackers have seen sense and 'think different' instead of attacking windows they are after Apple!
-
(1 reply)
#11 Posted by MegaManXcalibur on 22 Feb 2006 - 07:44
- A quick way to disable this is go to the preference menu in Safari and disable the option to "automatically open safe file types." With that option unchecked this exploit is no longer an issue.
-
#12 Posted by simeandrews on 22 Feb 2006 - 15:18
- I think the problem is that Apple thought they could include anything in their system but no one would care. but once someone made one trojan for Os X, everyone is looking for holes. Meaning Apple has to be more careful.
If active content such as an application or shell script is found within the archive, a prompt requests user confirmation. So far, so good. Problems ensue if a shell script is stored into a ZIP archive without the so-called shebang line. If this line is omitted, Safari no longer recognizes the content as potentially dangerous and executes shell commands without a confirmation prompt. This behavior has been discovered by Michael Lehn, who has documented it on a web site.